Information Security Analyst

Summary

Join Token.io's Info Sec team as a Security Analyst, reporting to the Info Sec Architect and collaborating with the Info Sec Officer and IT Analyst. You will be responsible for developing and expanding threat models for a cloud-based distributed compute platform, conducting security audits of AWS features and applications, performing vulnerability analysis, and conducting penetration tests. You will also implement and assess SIEM and IDS rules, conduct risk analysis of new tools and systems, and document best practices for information security.

Requirements

• Familiarity with Java and JavaScript
• Familiarity with Elastic Kubernetes Service, or Kubernetes in general
• Familiarity with Amazon Web Services
• Familiarity with RDBMS applications and data warehouses
• Creating dynamic threat models using pytm or similar tooling
• Familiarity with ISO 27001:2022, PCI DSS 4.0 and DORA and their requirements around implementing sound information security practices to ensure the validity of documented procedures and best practises
• Penetration testing from a network, Kubernetes or API perspective
• Documenting best practises, principles, and internal frameworks to further the adoption of information security practises within the organisation

Responsibilities

• Develop threat models for a cloud-based distributed compute platform architected on Kubernetes and hosted within AWS
• Expand threat models into meaningful threat scenarios targeting AIS and PIS mechanisms for a multi-tenanted A2A platform
• Provide accurate security audits of AWS features implemented to support the platform, Kubernetes and associated services, microservices written in Java, JavaScript, Go and Python and public APIs and web-apps exposed by the platform
• Provide vulnerability analysis on vulnerabilities affecting applications and their associated libraries, written in Java, JavaScript, Go and Python. Will require the Analyst to be able to reclassify, and justify the reclassification, of vulnerabilities based on their actual impact and not the documented impact
• Conduct threat-based penetration tests based on AIS and PIS mechanics against the platform from the perspective of internal and external threat actors
• Implement, assess and manipulate SIEM and IDS rules based on the STRIDE and MITRE ATT&CK frameworks to ensure that threats are correctly bubbled up via alert pipelines to on-call teams
• Conduct risk analysis of new tools, services, and systems to determine their potential impact on the information security of the organisation and the organisation's customers

Preferred Qualifications

• Go and Python experience is beneficial
• Familiarity with AI and ML applications, models and frameworks
• Experience conducting code security reviews